After this training, you will:
- Plan, perform and evaluate security tests from different angles
- Analyze any situation and choose the best security testing methods for it
- Assess the performance of security mechanisms, such as firewalls and encryption
- Understand how attackers think and how to counter their strategies
- Manage the human factors in Information Security
- Identify and document the security test requirements and tools
An international standard in software testing
The International Software Testing Qualification Board (ISTQB) was established in November 2002 with the aim of creating and harmonizing a global certification program for software testing. Today, the ISTQB certification scheme is fully recognized and widely adopted around the world.
This four-day accredited course prepares you for the exam ISTQB Specialist Security Tester and meets the requirements set by ISTQB.
Who should attend this training?
The training is aimed at people who already have achieved an advanced point in their careers in software testing and wish to develop their expertise in security testing.
Roles of participants in their organization
This training is meant for:
- Security Testers
- Software Testers who wish to develop a specialty in security testing
- Security Administrators who wish to learn how to test new and existing defenses
- Developers who want to learn secure coding techniques
- Managers who want to learn how security testing fits in the project lifecycle
Prior knowledge or training
You possess the ISTQB Foundation Certificate in Software Testing and have 3+ years of software testing and related experience.
Structure of this training
The training lasts four days in which you will learn all about security testing. In the Virtual Classroom these will be four days of 5 hour online meetings.
The exam consists of 45 multiple-choice questions and will take place on an extra day after the course. With a score of 65% or higher you get the ISTQB Security Tester Certificate.
Course outline
The Basis of Security Testing
- Security Risks
- Information Security Policies
- Security Auditing
Security Testing Purposes, Goals and Strategies
- Security Testing
- Purpose
- Objectives
- Scope and Coverage
- Approaches
- Improving the Security Testing Practices
Security Testing Processes
- Security Test Process Definition
- Security Test Maintenance
Security Testing Throughout the Software Lifecycle
- Role of Security Testing in a Software Lifecycle
Testing Security Mechanisms
- System Hardening
- Authentication and Authorization
- Encryption
- Firewalls and Network Zones
- Intrusion Detection
- Malware Scanning
- Data Obfuscation
- Training
Human Factors in Security Testing
- Understanding the Attackers
- Social Engineering
Security Test Evaluation and Reporting
Security Testing Tools
- Types and Purposes
- Tool Selection
Standards and Industry Trends
- Understanding and Applying Security Testing Standards
- Industry Trends
Possibilities in-house training
Improve provides this training in-house and tailored to your specific situation and needs upon request. For more information, please contact us at +31 (0)40 – 202 1803 or training@improveqs.nl.
Training information Virtual Classroom
- Location and dates: check the training calendar
- Schedule: 14:00 – 19:00 (four days)
- Fee: € 1.895, excluding VAT, excluding examination fee €275
- Training material included in the training fee
- Three months free e-coaching
For more information, please contact us at +31 (0)40 – 202 1803 or training@improveqs.nl
Improve also offers bespoke in-house training tailored to your specific requirements and needs upon request.
Your trainer from the USA
Randall (Randy) W. Rice is a thought-leading author, speaker and consultant in the field of software testing and software quality.
Randy has over 40 years experience building and testing mission-critical projects in a variety of environments. He has worked in the roles of software developer, system designer, project manager, QA manager, test manager, management consultant and trainer.
Randy was the chair of the ISTQB’s Working Party for the current Advanced Security Tester Syllabus and he is an officer of the American Software Testing Qualifications Board (ASTQB).
